Document ID: 284734
http://support.veritas.com/docs/284734
E-Mail this document to a colleague
http://support.veritas.com/docs/284734
E-Mail this document to a colleague
Symantec Security Advisory SYMC06-015: Symantec's Veritas NetBackup (tm) 6.0 PureDisk Remote Office Edition: Non-Privileged User Authentication Bypass Elevation of Privilege
Details:
Symantec Security
Advisory
SYM06-015
16 August 2006
Symantec's Veritas NetBackup (tm) PureDisk Remote Office Edition: Non-Privileged User Authentication Bypass Elevation of Privilege
Revision History
None
Severity
Medium (highly dependent on network configuration)
Overview
Symantec discovered a security issue in Symantec's Veritas NetBackup 6.0 PureDisk Remote Office Edition. An unauthorized user with access to the network and the server hosting the management interface can potentially bypass the management interface authentication to gain access and elevate their privileges on the system.
Supported Product(s) Affected
NOTE: For systems running NetBackup 6.0 GA PureDisk Remote Office Edition, it will be necessary to install Maintenance Pack 1 (NB_PDE_60_MP1_283808) prior to applying this Security Pack (NB_PDE_60_MP1_P01_284636), which can be found below, in the "Related Documents" section. This issue ONLY affects the product versions and builds listed above (6.0 and 6.0 MP1).
Details
An internal review revealed a potential elevation of privilege issue in the Symantec Veritas NetBackup PureDisk management interface. The management interface is accessible only through a Secure Sockets Layer (SSL) Web connection by default. However it is possible for a non-privileged user with access to the network and the server hosting the Symantec Veritas NetBackup PureDisk management interface, to bypass the management interface authentication and further leverage their access to elevate privileged access on the server
Symantec Response
Symantec Engineers have addressed the issues identified above and made a Security update available. Symantec strongly recommends all customers apply the latest security update to protect against threats of this nature. Symantec knows of no exploitation of or adverse customer impact from these issues.
The Maintenance Pack listed above, NB_PDE_60_MP1_P01, for affected Symantec's Veritas NetBackup PureDisk Remote Office Edition releases, is available in the "Related Documents" section below, or from the Support Web site at: http://support.veritas.com/menu_ddProduct_NBUPDROE_view_DOWNLOAD.htm
Best Practices
As part of normal best practices, Symantec recommends:
SYM06-015
16 August 2006
Symantec's Veritas NetBackup (tm) PureDisk Remote Office Edition: Non-Privileged User Authentication Bypass Elevation of Privilege
Revision History
None
Severity
Medium (highly dependent on network configuration)
| Type of Exploit | Vulnerable |
|---|---|
| Remote Access | Yes |
| Local Access | No |
| Authentication Required | Yes (to network) |
| Exploit publicly available | No |
Overview
Symantec discovered a security issue in Symantec's Veritas NetBackup 6.0 PureDisk Remote Office Edition. An unauthorized user with access to the network and the server hosting the management interface can potentially bypass the management interface authentication to gain access and elevate their privileges on the system.
Supported Product(s) Affected
| Product | Version | Builds | Solution |
|---|---|---|---|
| Symantec Veritas NetBackup PureDisk Remote Office Edition | 6.0 | GA, MP1 | NB_PDE_60_MP1_P01 |
NOTE: For systems running NetBackup 6.0 GA PureDisk Remote Office Edition, it will be necessary to install Maintenance Pack 1 (NB_PDE_60_MP1_283808) prior to applying this Security Pack (NB_PDE_60_MP1_P01_284636), which can be found below, in the "Related Documents" section. This issue ONLY affects the product versions and builds listed above (6.0 and 6.0 MP1).
Details
An internal review revealed a potential elevation of privilege issue in the Symantec Veritas NetBackup PureDisk management interface. The management interface is accessible only through a Secure Sockets Layer (SSL) Web connection by default. However it is possible for a non-privileged user with access to the network and the server hosting the Symantec Veritas NetBackup PureDisk management interface, to bypass the management interface authentication and further leverage their access to elevate privileged access on the server
Symantec Response
Symantec Engineers have addressed the issues identified above and made a Security update available. Symantec strongly recommends all customers apply the latest security update to protect against threats of this nature. Symantec knows of no exploitation of or adverse customer impact from these issues.
The Maintenance Pack listed above, NB_PDE_60_MP1_P01, for affected Symantec's Veritas NetBackup PureDisk Remote Office Edition releases, is available in the "Related Documents" section below, or from the Support Web site at: http://support.veritas.com/menu_ddProduct_NBUPDROE_view_DOWNLOAD.htm
Best Practices
As part of normal best practices, Symantec recommends:
- Restrict access to administration or management systems to authorized privileged users only
- Block remote access to all ports not essential for efficient operation
- Restrict remote access, if required, to trusted/authorized systems only
- Remove/disable unnecessary accounts or restrict access according to security policy as required
- Run under the principle of least privilege where possible
- Keep all operating systems and applications updated with the latest vendor patches
- Follow a multi-layered approach to security. Run both firewall and antivirus applications, at a minimum, to provide multiple points of detection and protection to both inbound and outbound threats
- Deploy network intrusion detection systems to monitor network traffic for signs of anomalous or suspicious activity. This may aid in detection of attacks or malicious activity related to exploitation of latest vulnerabilities
CVE
A CVE candidate number will be requested from The Common Vulnerabilities and Exposures (CVE) initiative. This advisory will be revised accordingly upon receipt of the CVE Candidate name. This issue is a candidate for inclusion in the CVE list which standardizes names for security problems. http://cve.mitre.org/
A CVE candidate number will be requested from The Common Vulnerabilities and Exposures (CVE) initiative. This advisory will be revised accordingly upon receipt of the CVE Candidate name. This issue is a candidate for inclusion in the CVE list which standardizes names for security problems. http://cve.mitre.org/
If you have not
received this as a Software Alert from the Symantec Email Notification Service,
please visit the following link to
subscribe: http://maillist.support.veritas.com/subscribe.asp
. To receive notifications of critical technical issues, like this one, select
"Software Alerts" for each product running in your environment. To receive
monthly updates on new or republished TechNotes, select "Digest" updates.
Products Applied:
NetBackup PureDisk 6.0, 6.0 MP1
NetBackup PureDisk 6.0, 6.0 MP1
Last Updated: August 17 2006 02:14 PM GMT
Expires on: 365 days from publish date
Subscribe to receive critical updates about this document
Expires on: 365 days from publish date
Subscribe to receive critical updates about this document
Subjects:
NetBackup PureDisk
Application: Configuration
Publishing Status: Techalert
Security: Symantec Employee
NetBackup PureDisk
Application: Configuration
Publishing Status: Techalert
Security: Symantec Employee
Languages:
English (US)
English (US)
Operating Systems:
Linux
Linux
PDOS 6.0
Symantec World Headquarters:
20330 Stevens Creek Blvd. Cupertino, CA 95014
World Wide Web: http://www.symantec.com,
Tech Support Web: http://entsupport.symantec.com,
E-Mail Support: http://seer.entsupport.symantec.com/email_forms,
FTP: ftp://ftp.entsupport.symantec.com or http://ftp.entsupport.symantec.com
20330 Stevens Creek Blvd. Cupertino, CA 95014
World Wide Web: http://www.symantec.com,
Tech Support Web: http://entsupport.symantec.com,
E-Mail Support: http://seer.entsupport.symantec.com/email_forms,
FTP: ftp://ftp.entsupport.symantec.com or http://ftp.entsupport.symantec.com
THE INFORMATION PROVIDED IN THE SYMANTEC SOFTWARE KNOWLEDGE BASE IS PROVIDED "AS IS" WITHOUT WARRANTY OF ANY KIND. SYMANTEC SOFTWARE DISCLAIMS ALL WARRANTIES, EITHER EXPRESS OR IMPLIED, INCLUDING THE WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE. IN NO EVENT SHALL SYMANTEC SOFTWARE OR ITS SUPPLIERS BE LIABLE FOR ANY DAMAGES WHATSOEVER INCLUDING DIRECT, INDIRECT, INCIDENTAL, CONSEQUENTIAL, LOSS OF BUSINESS PROFITS OR SPECIAL DAMAGES,EVEN IF SYMANTEC SOFTWARE OR ITS SUPPLIERS HAVE BEEN ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. SOME STATES DO NOT ALLOW THE EXCLUSION OR LIMITATION OF LIABILITY FOR CONSEQUENTIAL OR INCIDENTAL DAMAGES SO THE FOREGOING LIMITATION MAY NOT APPLY.